tybalex / opni-kibana-dashboard Goto Github PK

1. git clone https://github.com/opendistro-for-elasticsearch/opendistro-build
2. cd opendistro-build/helm/opendistro-es/
3. helm package .
4. helm install opendistro-es --set elasticsearch.data.persistence.size="100Gi",elasticsearch.client.replicas=3,elasticsearch.data.replicas=3 opendistro-es-1.13.1.tgz

port forward kibana to localhost:

kubectl port-forward svc/opendistro-es-kibana-svc 5601:443

then pls visit -> localhost:5601  with username: admin  and pwd: admin

Import the Opni dashboard by following steps:

1. click Stack Management -> Saved Objects -> Import
2. hit Import under Select a file to import, select opni-dashboard.ndjson from this directory.
3. Click the blue button Import at the bottom, and then click Done. Now you can navigate to Kibana -> Dashboard to try out the Opni Logs Dashboard.

1. from your browser, browse to: https://companyname.slack.com/apps

2. Click the Get Essential Apps button

3. Search for and select Incoming WebHooks

4. Click Add to Slack

5. Select the channel to post alerts to

6. Hit Add incoming Webhooks integration

7. Copy the Webhook URL

8. browse to kibana at localhost:5601

9. Click the menu button on the left of Home at top left

10. Select Alerting and then click Destinations

11. Hit Add destination, put a name for the destination, and paste the Webhook URL from step 7 to the box Webhook URL, then Click Create

1. Click Alerting and then select Monitors
2. put a name for Monitor name
3. in Define the monitor section, select logs for index and time for time field
4. For the query that pops up from step 3, select For the last 1 minute(s) and WHERE anomaly_level is Anomaly, click Create
5. put a trigger name in the Trigger name box, for Trigger condition, select IS ABOVE 10
6. scroll down to the Configure actions section
7. put slack notification as Action name, select the configured Slack Destination as Destination.
8. Put the message you want in Message Subject and Click Create

You are ready to go!

Navigate to Menu -> Dev Tools and paste the following codes in the left side console:

POST training_signal/_doc/
{
  "@timestamp": "2021-01-01T00:00:00",
  "training_method" : "nulog",
  "status" : "submitted"
}

then click ▻ to send request to launch nulog training!

the output on the right side should be like this:

{
  "_index" : "training_signal",
  "_type" : "_doc",
  "_id" : "puhts3gB0Gdvef1IavPR",
  "_version" : 1,
  "result" : "created",
  "_shards" : {
    "total" : 2,
    "successful" : 1,
    "failed" : 0
  },
  "_seq_no" : 27,
  "_primary_term" : 2
}

remember to copy the _id so you can track the status of the job simply by:

GET training_signal/_doc/puhts3gB0Gdvef1IavPR