#!/bin/bash
# CentOS 7 EFK Stack Installation Script
# Install OpenJDK
sudo yum install -y java-11-openjdk
# Install Elasticsearch
sudo rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch
sudo tee /etc/yum.repos.d/elasticsearch.repo <<EOF
[elasticsearch-7.x]
name=Elasticsearch repository for 7.x packages
baseurl=https://artifacts.elastic.co/packages/7.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=1
autorefresh=1
type=rpm-md
EOF
sudo yum install -y elasticsearch
sudo service elasticsearch start
sudo systemctl enable elasticsearch
# Install Fluentd
sudo curl -L https://toolbelt.treasuredata.com/sh/install-redhat-td-agent3.sh | sudo sh
sudo service td-agent start
sudo systemctl enable td-agent
# Install Kibana
sudo rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch
sudo tee /etc/yum.repos.d/kibana.repo <<EOF
[kibana-7.x]
name=Kibana repository for 7.x packages
baseurl=https://artifacts.elastic.co/packages/7.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=1
autorefresh=1
type=rpm-md
EOF
sudo yum install -y kibana
sudo tee /etc/kibana/kibana.yml <<EOF
server.host: "0.0.0.0"
EOF
sudo service kibana start
sudo systemctl enable kibana
# Print status information
echo "Elasticsearch, Fluentd, and Kibana have been installed and started."
echo "Elasticsearch: http://localhost:9200/"
echo "Kibana: http://localhost:5601/"
# Clean up
sudo yum clean all
现在您可以通过访问 Kibana 的 Web 界面(默认地址是 http://your_server_ip:5601)来使用 EFK 堆栈,配置 Fluentd 来将日志发送到 Elasticsearch,并在 Kibana 中查看和分析日志。
