Last active
August 29, 2015 14:06
Revisions
-
jasonruyle revised this gist
Sep 4, 2014 . 1 changed file with 39 additions and 19 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -169,16 +169,6 @@ }, "filter": { "list": { "1": { "type": "time", "field": "@timestamp", @@ -191,7 +181,6 @@ } }, "ids": [ 1 ] } @@ -379,8 +368,8 @@ "editable": true, "type": "table", "loadingEditor": false, "size": 25, "pages": 20, "offset": 0, "sort": [ "_score", @@ -415,7 +404,8 @@ 11, 12, 13, 14, 15 ] }, "style": { @@ -464,7 +454,22 @@ "queries": { "mode": "all", "ids": [ 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15 ] }, "title": "Events over time", @@ -529,8 +534,8 @@ "default" ], "type": "table", "size": 25, "pages": 20, "offset": 0, "sort": [ "@timestamp", @@ -551,7 +556,22 @@ "queries": { "mode": "all", "ids": [ 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15 ] }, "field_list": true, @@ -612,7 +632,7 @@ }, { "type": "filtering", "collapse": false, "notice": true, "enable": true } -
Sep 4, 2014 . 1 changed file with 0 additions and 6 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -566,12 +566,6 @@ ], "editable": true, "failover": false, "index": { "interval": "day", "pattern": "[logstash-]YYYY.MM.DD", -
Sep 4, 2014 . 1 changed file with 42 additions and 13 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -139,12 +139,13 @@ "query": "facility=cron" }, "15": { "query": "*", "alias": "", "color": "#7EB26D", "id": 15, "pin": false, "type": "lucene", "enable": true } }, "ids": [ @@ -181,7 +182,7 @@ "1": { "type": "time", "field": "@timestamp", "from": "now-24h", "to": "now", "mandate": "must", "active": true, @@ -427,7 +428,7 @@ "notice": false }, { "title": "Graph Search", "height": "350px", "editable": true, "collapse": false, @@ -485,14 +486,35 @@ "options": true, "tooltip": { "value_type": "cumulative", "query_as_alias": true }, "scale": 1, "y_format": "none", "grid": { "max": null, "min": 0 }, "annotate": { "enable": false, "query": "*", "size": 20, "field": "_type", "sort": [ "_score", "desc" ] }, "pointradius": 5, "show_query": true, "legend_counts": true, "zerofill": true, "derivative": false } ], "notice": false }, { "title": "Events Search", "height": "350px", "editable": true, "collapse": false, @@ -529,27 +551,34 @@ "queries": { "mode": "all", "ids": [ 0 ] }, "field_list": true, "status": "Stable", "trimFactor": 300, "normTimes": true, "all_fields": false } ], "notice": false } ], "editable": true, "failover": false, //"index": { // "interval": "none", // "pattern": "[logstash-]YYYY.MM.DD", // "default": "_all", // "warm_fields": false //}, "index": { "interval": "day", "pattern": "[logstash-]YYYY.MM.DD", "default": "NO_TIME_FILTER_OR_INDEX_PATTERN_NOT_MATCHED", "warm_fields": true }, "style": "dark", "panel_hints": true, "loader": { "save_gist": false, -
Sep 4, 2014 . 1 changed file with 3 additions and 3 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -178,20 +178,20 @@ "alias": "", "id": 0 }, "1": { "type": "time", "field": "@timestamp", "from": "now-{{ARGS.from || '24h'}}", "to": "now", "mandate": "must", "active": true, "alias": "", "id": 1 } }, "ids": [ 0, 1 ] } }, -
Sep 4, 2014 . 1 changed file with 137 additions and 3 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,5 +1,5 @@ { "title": "TIC Dashboard", "services": { "query": { "list": { @@ -137,6 +137,14 @@ "type": "lucene", "enable": true, "query": "facility=cron" }, "15": { "query": "{{ARGS.query || '*'}}", "alias": "", "color": "#7EB26D", "id": 15, "pin": false, "type": "lucene" } }, "ids": [ @@ -154,7 +162,8 @@ 11, 12, 13, 14, 15 ] }, "filter": { @@ -168,10 +177,21 @@ "active": true, "alias": "", "id": 0 }, "15": { "type": "time", "field": "@timestamp", "from": "now-{{ARGS.from || '24h'}}", "to": "now", "mandate": "must", "active": true, "alias": "", "id": 15 } }, "ids": [ 0, 15 ] } }, @@ -405,6 +425,120 @@ } ], "notice": false }, { "title": "Graph", "height": "350px", "editable": true, "collapse": false, "collapsable": true, "panels": [ { "span": 12, "editable": true, "group": [ "default" ], "type": "histogram", "mode": "count", "time_field": "@timestamp", "value_field": null, "auto_int": true, "resolution": 100, "interval": "10m", "fill": 3, "linewidth": 3, "timezone": "browser", "spyable": true, "zoomlinks": true, "bars": true, "stack": true, "points": false, "lines": false, "legend": true, "x-axis": true, "y-axis": true, "percentage": false, "interactive": true, "queries": { "mode": "all", "ids": [ 0 ] }, "title": "Events over time", "intervals": [ "auto", "1s", "1m", "5m", "10m", "30m", "1h", "3h", "12h", "1d", "1w", "1M", "1y" ], "options": true, "tooltip": { "value_type": "cumulative", "query_as_alias": false } } ], "notice": false }, { "title": "Events", "height": "350px", "editable": true, "collapse": false, "collapsable": true, "panels": [ { "title": "All events", "error": false, "span": 12, "editable": true, "group": [ "default" ], "type": "table", "size": 100, "pages": 5, "offset": 0, "sort": [ "@timestamp", "desc" ], "style": { "font-size": "9pt" }, "overflow": "min-height", "fields": [], "localTime": true, "timeField": "@timestamp", "highlight": [], "sortable": true, "header": true, "paging": true, "spyable": true, "queries": { "mode": "all", "ids": [ 15 ] }, "field_list": true, "status": "Stable", "trimFactor": 300, "normTimes": true } ], "notice": false } ], "editable": true, -
Sep 4, 2014 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,499 @@ { "title": "EFK Starter Dashboard", "services": { "query": { "list": { "0": { "query": "severity=info", "alias": "", "color": "#7EB26D", "id": 0, "pin": false, "type": "lucene", "enable": true }, "1": { "id": 1, "color": "#EAB839", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=err" }, "2": { "id": 2, "color": "#6ED0E0", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=notice" }, "3": { "id": 3, "color": "#EF843C", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=crit" }, "4": { "id": 4, "color": "#E24D42", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=emerg" }, "5": { "id": 5, "color": "#1F78C1", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=warn" }, "6": { "id": 6, "color": "#BA43A9", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=alert" }, "7": { "id": 7, "color": "#705DA0", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "severity=debug" }, "8": { "id": 8, "color": "#508642", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=kern" }, "9": { "id": 9, "color": "#CCA300", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=user" }, "10": { "id": 10, "color": "#447EBC", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=mail" }, "11": { "id": 11, "color": "#C15C17", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=daemon" }, "12": { "id": 12, "color": "#890F02", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=auth" }, "13": { "id": 13, "color": "#0A437C", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=syslog" }, "14": { "id": 14, "color": "#6D1F62", "alias": "", "pin": false, "type": "lucene", "enable": true, "query": "facility=cron" } }, "ids": [ 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14 ] }, "filter": { "list": { "0": { "type": "time", "field": "@timestamp", "from": "now-1h", "to": "now", "mandate": "must", "active": true, "alias": "", "id": 0 } }, "ids": [ 0 ] } }, "rows": [ { "title": "Graphs", "height": "200px", "editable": true, "collapse": false, "collapsable": true, "panels": [ { "span": 12, "editable": true, "type": "histogram", "loadingEditor": false, "mode": "count", "time_field": "@timestamp", "value_field": null, "x-axis": true, "y-axis": true, "scale": 1, "y_format": "none", "grid": { "max": null, "min": 0 }, "queries": { "mode": "selected", "ids": [ 0, 1, 2, 3, 4, 5, 6, 7 ] }, "annotate": { "enable": false, "query": "*", "size": 20, "field": "_type", "sort": [ "_score", "desc" ] }, "auto_int": false, "resolution": 100, "interval": "1m", "intervals": [ "auto", "1s", "1m", "5m", "10m", "30m", "1h", "3h", "12h", "1d", "1w", "1y" ], "lines": false, "fill": 0, "linewidth": 3, "points": false, "pointradius": 5, "bars": true, "stack": true, "spyable": true, "zoomlinks": true, "options": true, "legend": true, "show_query": true, "interactive": true, "legend_counts": true, "timezone": "browser", "percentage": false, "zerofill": true, "derivative": false, "tooltip": { "value_type": "cumulative", "query_as_alias": true }, "title": "# of syslog events by severity" }, { "span": 12, "editable": true, "type": "histogram", "loadingEditor": false, "mode": "count", "time_field": "@timestamp", "value_field": null, "x-axis": true, "y-axis": true, "scale": 1, "y_format": "none", "grid": { "max": null, "min": 0 }, "queries": { "mode": "selected", "ids": [ 8, 9, 10, 11, 12, 13, 14 ] }, "annotate": { "enable": false, "query": "*", "size": 20, "field": "_type", "sort": [ "_score", "desc" ] }, "auto_int": false, "resolution": 100, "interval": "1m", "intervals": [ "auto", "1s", "1m", "5m", "10m", "30m", "1h", "3h", "12h", "1d", "1w", "1y" ], "lines": false, "fill": 0, "linewidth": 3, "points": false, "pointradius": 5, "bars": true, "stack": true, "spyable": true, "zoomlinks": true, "options": true, "legend": true, "show_query": true, "interactive": true, "legend_counts": true, "timezone": "browser", "percentage": false, "zerofill": true, "derivative": false, "tooltip": { "value_type": "cumulative", "query_as_alias": true }, "title": "# of Syslog Events by Facility" } ], "notice": false }, { "title": "Logs", "height": "500px", "editable": true, "collapse": false, "collapsable": true, "panels": [ { "error": false, "span": 12, "editable": true, "type": "table", "loadingEditor": false, "size": 100, "pages": 5, "offset": 0, "sort": [ "_score", "desc" ], "overflow": "min-height", "fields": [], "highlight": [], "sortable": true, "header": true, "paging": true, "field_list": true, "all_fields": false, "trimFactor": 300, "localTime": false, "timeField": "@timestamp", "spyable": true, "queries": { "mode": "all", "ids": [ 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14 ] }, "style": { "font-size": "9pt" }, "normTimes": true, "title": "Syslog Messages" } ], "notice": false } ], "editable": true, "index": { "interval": "none", "pattern": "[logstash-]YYYY.MM.DD", "default": "_all", "warm_fields": false }, "style": "dark", "failover": false, "panel_hints": true, "loader": { "save_gist": false, "save_elasticsearch": true, "save_local": true, "save_default": true, "save_temp": true, "save_temp_ttl_enable": true, "save_temp_ttl": "30d", "load_gist": true, "load_elasticsearch": true, "load_elasticsearch_size": 20, "load_local": true, "hide": false }, "pulldowns": [ { "type": "query", "collapse": true, "notice": false, "query": "*", "pinned": true, "history": [ "*", "facility=mail", "facility=user", "facility=kern", "severity=debug", "severity=alert", "severity=warn", "severity=emerg", "severity=crit", "severity=notice" ], "remember": 10, "enable": true }, { "type": "filtering", "collapse": true, "notice": true, "enable": true } ], "nav": [ { "type": "timepicker", "collapse": false, "notice": false, "status": "Stable", "time_options": [ "5m", "15m", "1h", "6h", "12h", "24h", "2d", "7d", "30d" ], "refresh_intervals": [ "5s", "10s", "30s", "1m", "5m", "15m", "30m", "1h", "2h", "1d" ], "timefield": "@timestamp", "enable": true, "now": true, "filter_id": 0 } ], "refresh": false }