Introduction

ELK Description

ELK is the acronym for three open source projects:

  • Elasticsearch: a search and analytics engine;

  • Logstash: a server‑side data processing pipeline that ingests data from multiple sources simultaneously, transforms it, and then sends it to a "stash" like Elasticsearch;

  • Kibana: a web application to visualize data with charts and graphs in Elasticsearch.

EverTrust built a powerful monitoring and investigation dashboard for an EverTrust OCSP infrastructure using the complete ELK stack.

This project is powered up by:

This document is specific to ELK version 7.6.

Scope

This document is an Administration Guide and details how to:

  • Deploy and configure log agents on each EverTrust OCSP node;

  • Configure the Logstash pipeline;

  • Import and manage Kibana indexes, visualizations and dashboards;

Out of Scope

This document does not detail how to install the ELK stack.