Filebeat: Apache2 module #3256

tsg · 2016-12-29T18:02:55Z

Contains filesets for access logs and error logs. It's similar with the Nginx one, although coming with a few challenges of its own.

Sample dashboard:

Will need a rebase on top #3248. Part of #3159.

ruflin · 2017-01-03T06:52:13Z

filebeat/module/apache2/_meta/fields.yml

@@ -0,0 +1,9 @@
+- key: apache2
+  title: "apache2"


We should probably capitalise all titles. We could do this also in the script. @dedemorton did for this some cleanup in Metricbeat.

This is created by the generator, which is somehow limited in that regard. Do you mean fixing it up by hand?

I fixed it by hand.

ruflin · 2017-01-03T06:55:04Z

filebeat/module/apache2/access/_meta/fields.yml

+          example: Chrome
+          description: >
+            The name of the user agent.
+        - name: os


os.name, os.major, os.minor?

These are created by the user agent processor, which is not that flexible when it comes to field names: https://www.elastic.co/guide/en/elasticsearch/plugins/master/using-ingest-user-agent.html

We could maybe do renamings, but I'd say the complexity is not worth it.

ruflin · 2017-01-03T06:55:34Z

filebeat/module/apache2/access/_meta/fields.yml

+        - name: os_name
+          type: keyword
+          description: >
+            The name of the operating system.


How is this different from os?

ruflin · 2017-01-03T06:57:42Z

filebeat/module/apache2/access/test/test.log-expected.json

+        "user_agent": {
+          "major": "50",
+          "minor": "0",
+          "os": "Mac OS X 10.12",


I see, os contains all info and the other 3 are a split up version. Do we need the split up version?

It's what the processor does by default. I'd stick with that, since if we don't, someone will ask why it's different from LS.

ruflin · 2017-01-03T07:00:16Z

@tsg #3248 is merged. Can you rebase on top?

Contains: * access logs fileset, with with_plugins and no_plugins versions * error logs fileset * Kibana dashboards

tsg · 2017-01-04T08:37:34Z

@ruflin rebased and squashed.

tsg · 2017-01-04T11:04:59Z

jenkins, package it

tsg · 2017-01-04T11:43:23Z

jenkins, test it

tsg added in progress Pull request is currently in progress. review labels Dec 29, 2016

tsg mentioned this pull request Dec 30, 2016

Meta ticket: Filebeat modules #3159

Closed

22 tasks

tsg removed the in progress Pull request is currently in progress. label Jan 2, 2017

ruflin added the Filebeat Filebeat label Jan 2, 2017

ruflin reviewed Jan 3, 2017

View reviewed changes

tsg force-pushed the filebeat_modules_apache2 branch from 6147859 to c1e321f Compare January 4, 2017 08:32

Apache2 Filebeat module

0c5d820

Contains: * access logs fileset, with with_plugins and no_plugins versions * error logs fileset * Kibana dashboards

tsg force-pushed the filebeat_modules_apache2 branch from c1e321f to 0c5d820 Compare January 4, 2017 08:36

ruflin merged commit 8b87995 into elastic:master Jan 5, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Filebeat: Apache2 module #3256

Filebeat: Apache2 module #3256

tsg commented Dec 29, 2016 •

edited

Loading

ruflin Jan 3, 2017

tsg Jan 4, 2017

tsg Jan 4, 2017

ruflin Jan 3, 2017

tsg Jan 4, 2017

ruflin Jan 3, 2017

ruflin Jan 3, 2017

tsg Jan 4, 2017

ruflin commented Jan 3, 2017

tsg commented Jan 4, 2017

tsg commented Jan 4, 2017

tsg commented Jan 4, 2017

Filebeat: Apache2 module #3256

Filebeat: Apache2 module #3256

Conversation

tsg commented Dec 29, 2016 • edited Loading

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

ruflin commented Jan 3, 2017

tsg commented Jan 4, 2017

tsg commented Jan 4, 2017

tsg commented Jan 4, 2017

tsg commented Dec 29, 2016 •

edited

Loading