From 057124e4aaa3fe383c35d3c6e250c7f283075c55 Mon Sep 17 00:00:00 2001 From: Ben Copeland Date: Fri, 10 Jun 2016 14:58:58 +0100 Subject: Our Kibana dashboard - Apache releases dashboard/visualizations/searches - Http-smart/dumb dashboard/visualizations/searches - Syslog Git Protocol dashboard/visualizations/searches Signed-off-by: Ben Copeland --- logstash/kibana.json | 311 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 311 insertions(+) create mode 100644 logstash/kibana.json diff --git a/logstash/kibana.json b/logstash/kibana.json new file mode 100644 index 0000000..1ad8915 --- /dev/null +++ b/logstash/kibana.json @@ -0,0 +1,311 @@ +[ + { + "_id": "git-daemon", + "_type": "dashboard", + "_source": { + "title": "git-daemon", + "hits": 0, + "description": "", + "panelsJSON": "[{\"col\":4,\"id\":\"apache_git_access_git_us_dumb\",\"panelIndex\":1,\"row\":1,\"size_x\":3,\"size_y\":5,\"type\":\"visualization\"},{\"col\":1,\"id\":\"apache_git_access_git_us_smart\",\"panelIndex\":2,\"row\":1,\"size_x\":3,\"size_y\":5,\"type\":\"visualization\"},{\"col\":7,\"id\":\"git-upload-pack-IP-Address\",\"panelIndex\":3,\"row\":7,\"size_x\":4,\"size_y\":5,\"type\":\"visualization\"},{\"col\":7,\"id\":\"git_us_smart_dumb_git_protocol_pie_chart\",\"panelIndex\":4,\"row\":1,\"size_x\":4,\"size_y\":6,\"type\":\"visualization\"},{\"col\":1,\"id\":\"syslog_git_access_git_us_git_protocol\",\"panelIndex\":5,\"row\":6,\"size_x\":3,\"size_y\":6,\"type\":\"visualization\"},{\"col\":4,\"id\":\"git_upload_pack_tag_map\",\"panelIndex\":6,\"row\":6,\"size_x\":3,\"size_y\":6,\"type\":\"visualization\"},{\"id\":\"geo_by_city_country\",\"type\":\"visualization\",\"panelIndex\":7,\"size_x\":3,\"size_y\":4,\"col\":4,\"row\":12}]", + "optionsJSON": "{\"darkTheme\":false}", + "uiStateJSON": "{}", + "version": 1, + "timeRestore": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" + } + } + }, + { + "_id": "api", + "_type": "dashboard", + "_source": { + "title": "api", + "hits": 0, + "description": "", + "panelsJSON": "[{\"id\":\"api_v1_v2\",\"type\":\"visualization\",\"panelIndex\":1,\"size_x\":5,\"size_y\":5,\"col\":1,\"row\":1},{\"id\":\"api-v1-and-v2\",\"type\":\"visualization\",\"panelIndex\":2,\"size_x\":5,\"size_y\":5,\"col\":6,\"row\":1}]", + "optionsJSON": "{\"darkTheme\":false}", + "uiStateJSON": "{}", + "version": 1, + "timeRestore": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}}}]}" + } + } + }, + { + "_id": "apache_git_accesss_git_us_dumb", + "_type": "search", + "_source": { + "title": "apache_git_accesss_git_us_dumb", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}},\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"index\":\"logstash-*\",\"key\":\"tags\",\"negate\":false,\"value\":\"http-dumb\"},\"query\":{\"match\":{\"tags\":{\"query\":\"http-dumb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" + } + } + }, + { + "_id": "\"-slash-api-slash-\"-AND-\"publish\"", + "_type": "search", + "_source": { + "title": "\"/api/\" AND \"publish\"", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"\\\"/api/\\\" AND \\\"publish\\\"\",\"analyze_wildcard\":true}}}" + } + } + }, + { + "_id": "apache_git_accesss_git_us_smart", + "_type": "search", + "_source": { + "title": "apache_git_accesss_git_us_smart", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"filter\":[{\"meta\":{\"negate\":false,\"index\":\"logstash-*\",\"key\":\"verb\",\"value\":\"POST\",\"disabled\":false,\"alias\":null},\"query\":{\"match\":{\"verb\":{\"query\":\"POST\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"\\\"git-upload-pack\\\"\",\"analyze_wildcard\":true}}}" + } + } + }, + { + "_id": "\"-slash-api-slash-v3\"", + "_type": "search", + "_source": { + "title": "\"/api/v3\"", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"\\\"/api/v3/publish\\\"\",\"analyze_wildcard\":true}}}" + } + } + }, + { + "_id": "git_upload_pack_tag", + "_type": "search", + "_source": { + "title": "git_upload_pack_tag", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"filter\":[{\"meta\":{\"negate\":false,\"index\":\"logstash-*\",\"key\":\"tags\",\"value\":\"git-upload-pack\",\"disabled\":false,\"alias\":null},\"query\":{\"match\":{\"tags\":{\"query\":\"git-upload-pack\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}}}" + } + } + }, + { + "_id": "\"-slash-api-slash-v2\"", + "_type": "search", + "_source": { + "title": "\"/api/v2\"", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"\\\"/api/v2/publish\\\"\",\"analyze_wildcard\":true}}}" + } + } + }, + { + "_id": "syslog_git_accesss_git_us_git_protocol", + "_type": "search", + "_source": { + "title": "syslog_git_accesss_git_us_git_protocol", + "description": "", + "hits": 0, + "columns": [ + "_source" + ], + "sort": [ + "@timestamp", + "desc" + ], + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"index\":\"logstash-*\",\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}},\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"index\":\"logstash-*\",\"key\":\"tags\",\"negate\":false,\"value\":\"git-upload-pack\"},\"query\":{\"match\":{\"tags\":{\"query\":\"git-upload-pack\",\"type\":\"phrase\"}}}},{\"meta\":{\"negate\":false,\"index\":\"logstash-*\",\"key\":\"type\",\"value\":\"syslog\",\"disabled\":false,\"alias\":null},\"query\":{\"match\":{\"type\":{\"query\":\"syslog\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" + } + } + }, + { + "_id": "api_v1_v2", + "_type": "visualization", + "_source": { + "title": "api_v1_v2", + "visState": "{\"title\":\"api_v1_v2\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"request.raw\"}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"request.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "\"-slash-api-slash-\"-AND-\"publish\"", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "syslog_git_access_git_us_git_protocol", + "_type": "visualization", + "_source": { + "title": "syslog_git_access_git_us_git_protocol", + "visState": "{\"title\":\"syslog_git_access_git_us_git_protocol\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"git_repo_name.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "syslog_git_accesss_git_us_git_protocol", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "apache_git_access_git_us_smart", + "_type": "visualization", + "_source": { + "title": "apache_git_access_git_us_smart", + "visState": "{\"title\":\"apache_git_access_git_us_smart\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"git_repo_name.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "apache_git_accesss_git_us_smart", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "apache_git_access_git_us_dumb", + "_type": "visualization", + "_source": { + "title": "apache_git_access_git_us_dumb", + "visState": "{\"title\":\"apache_git_access_git_us_dumb\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"git_repo_name.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", + "uiStateJSON": "{\"spy\":{\"mode\":{\"name\":null,\"fill\":false}}}", + "description": "", + "savedSearchId": "apache_git_accesss_git_us_dumb", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "api-v1-and-v2", + "_type": "visualization", + "_source": { + "title": "api v1 and v2", + "visState": "{\"title\":\"api v1 and v2\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":{\"query_string\":{\"query\":\"\\\"/v2/\\\"\",\"analyze_wildcard\":true}}},\"label\":\"\"},{\"input\":{\"query\":{\"query_string\":{\"query\":\"\\\"/v3/\\\"\",\"analyze_wildcard\":true}}}}]}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "\"-slash-api-slash-\"-AND-\"publish\"", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "git_us_smart_dumb_git_protocol_pie_chart", + "_type": "visualization", + "_source": { + "title": "git_us_smart_dumb_git_protocol_pie_chart", + "visState": "{\"title\":\"git_us_smart_dumb_git_protocol_pie_chart\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"isDonut\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"type\":\"filters\",\"schema\":\"segment\",\"params\":{\"filters\":[{\"input\":{\"query\":{\"query_string\":{\"query\":\"type: syslog\",\"analyze_wildcard\":true}}},\"label\":\"GIT Protocol\"},{\"input\":{\"query\":{\"query_string\":{\"query\":\"verb: POST\",\"analyze_wildcard\":true}}},\"label\":\"Smart Protocol\"},{\"input\":{\"query\":{\"query_string\":{\"query\":\"tags: http-dumb\",\"analyze_wildcard\":true}}},\"label\":\"Dumb Protocol\"}]}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "git_upload_pack_tag", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "git-upload-pack-IP-Address", + "_type": "visualization", + "_source": { + "title": "git-upload-pack-IP-Address", + "visState": "{\"title\":\"git-upload-pack-IP-Address\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"clientip.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "git_upload_pack_tag", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "git_upload_pack_tag_map", + "_type": "visualization", + "_source": { + "title": "git_upload_pack_tag_map", + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"geoip.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"mapType\":\"Scaled Circle Markers\",\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"git_upload_pack_tag_map\",\"type\":\"tile_map\"}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "git_upload_pack_tag", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + }, + { + "_id": "geo_by_city_country", + "_type": "visualization", + "_source": { + "title": "geo_by_city_country", + "visState": "{\"title\":\"geo_by_city_country\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"3\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"geoip.city_name.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"geoip.country_name.raw\",\"size\":500,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", + "uiStateJSON": "{}", + "description": "", + "savedSearchId": "git_upload_pack_tag", + "version": 1, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + } + } + } +] \ No newline at end of file -- cgit v1.2.3