Kibana 7.x configuration and external access

preface

Elasticsearch 7.x was installed and deployed earlier. In this article, you will learn about Kibana, a visual tool for Elasticsearch that visualizes stored document data.

Environment configuration

• CentOS 7+
• Elasticsearch 7.7.0 needs to be started in advance
• Kibana 7.7.0

steps

Use common user rights for Kibana configuration and operation;

1. Download Kibana 7.7.0 as Elasticsearch version

2. Download the kibana-7.7.0-linux-x86_64.tar.gz package and upload it to the server directory.

3. Unzip to kibana deployment directory:

   The tar - ZXF kibana 7.7.0 - Linux - x86_64. Tar. GzCopy the code

4. After decompression, the directory name is kibana-7.7.0-linux-x86_64, or you can change it to Kibana if necessary:

   The mv kibana - 7.7.0 - Linux - x86_64 kibanaCopy the code

5. Enter kibana directory and configure as needed;

6. Open the Kibana service;

7. Open the browser and enter the address to access.

Kibana configuration file

KibanaConfiguration file path:

The config/kibana. Yml;

Configuration contents and description

# Kibana is served by a back end server. This setting specifies the port to use.
# Kibana open port, default is 5601
server.port: 5601

# Specifies the address to which the Kibana server will bind. IP addresses and host names are both valid values.
# The default is 'localhost', which usually means remote machines will not be able to connect.
# To allow connections from remote users, set this parameter to a non-loopback address.
# Kibana is bound to host. Default is localhost. You can also configure the local LAN IP. 0.0.0.0 indicates that all remote machines can be connected
server.host: "0.0.0.0"
#server.host: "localhost"

# Enables you to specify a path to mount Kibana at if you are running behind a proxy.
# Use the `server.rewriteBasePath` setting to tell Kibana if it should remove the basePath
# from requests it receives, and to prevent a deprecation warning at startup.
# This setting cannot end in a slash.
#server.basePath: ""

# Specifies whether Kibana should rewrite requests that are prefixed with
# `server.basePath` or require that they are rewritten by your reverse proxy.
# This setting was effectively always `false` before Kibana 6.3 and will
# default to 'true' starting in Kibana 7.0
#server.rewriteBasePath: false

# The maximum payload size in bytes for incoming server requests.
#server.maxPayloadBytes: 1048576

# The Kibana server's name. This is used for display purposes.
#server.name: "your-hostname"

# The URLs of the Elasticsearch instances to use for all your queries.
# Kibana listen on elasticSearch instance address, array, configurable multiple (cluster)
elasticsearch.hosts: ["http://localhost:9201"]

# When this setting's value is true Kibana uses the hostname specified in the server.host
# setting. When the value of this setting is false, Kibana uses the hostname of the host
# that connects to this Kibana instance.
#elasticsearch.preserveHost: true

# Kibana uses an index in Elasticsearch to store saved searches, visualizations and
# dashboards. Kibana creates a new index if the index doesn't already exist.
Configure Kibana index for Elasticsearch
#kibana.index: ".kibana"

# The default application to load.
#kibana.defaultAppId: "home"

# If your Elasticsearch is protected with basic authentication, these settings provide
# the username and password that the Kibana server uses to perform maintenance on the Kibana
# index at startup. Your Kibana users still need to authenticate with Elasticsearch, which
# is proxied through the Kibana server.
Configure the username and password for accessing elasticSearch instance
#elasticsearch.username: "kibana"
#elasticsearch.password: "pass"

# Enables SSL and paths to the PEM-format SSL certificate and SSL key files, respectively.
# These settings enable SSL for outgoing requests from the Kibana server to the browser.
# SSL configuration
#server.ssl.enabled: false
#server.ssl.certificate: /path/to/your/server.crt
#server.ssl.key: /path/to/your/server.key

# Optional settings that provide the paths to the PEM-format SSL certificate and key files.
# These files are used to verify the identity of Kibana to Elasticsearch and are required when
# xpack.security.http.ssl.client_authentication in Elasticsearch is set to required.
#elasticsearch.ssl.certificate: /path/to/your/client.crt
#elasticsearch.ssl.key: /path/to/your/client.key

# Optional setting that enables you to specify a path to the PEM file for the certificate
# authority for your Elasticsearch instance.
#elasticsearch.ssl.certificateAuthorities: [ "/path/to/your/CA.pem" ]

# To disregard the validity of SSL certificates, change this setting's value to 'none'.
#elasticsearch.ssl.verificationMode: full

# Time in milliseconds to wait for Elasticsearch to respond to pings. Defaults to the value of
# the elasticsearch.requestTimeout setting.
#elasticsearch.pingTimeout: 1500

# Time in milliseconds to wait for responses from the back end or Elasticsearch. This value
# must be a positive integer.
#elasticsearch.requestTimeout: 30000

# List of Kibana client-side headers to send to Elasticsearch. To send *no* client-side
# headers, set this value to [] (an empty list).
#elasticsearch.requestHeadersWhitelist: [ authorization ]

# Header names and values that are sent to Elasticsearch. Any custom headers cannot be overwritten
# by client-side headers, regardless of the elasticsearch.requestHeadersWhitelist configuration.
#elasticsearch.customHeaders: {}

# Time in milliseconds for Elasticsearch to wait for responses from shards. Set to 0 to disable.
#elasticsearch.shardTimeout: 30000

# Time in milliseconds to wait for Elasticsearch at Kibana startup before retrying.
#elasticsearch.startupTimeout: 5000

# Logs queries sent to Elasticsearch. Requires logging.verbose set to true.
#elasticsearch.logQueries: false

# Specifies the path where Kibana creates the process ID file.
Pid output path of the Kibana process
#pid.file: /var/run/kibana.pid

# Enables you specify a file where Kibana stores log output.
#logging.dest: stdout

# Set the value of this setting to true to suppress all logging output.
#logging.silent: false

# Set the value of this setting to true to suppress all logging output other than error messages.
#logging.quiet: false

# Set the value of this setting to true to log all events, including system usage information
# and all requests.
#logging.verbose: false

# Set the interval in milliseconds to sample system and process performance
# metrics. Minimum is 100ms. Defaults to 5000.
#ops.interval: 5000

# Specifies locale to be used for all localizable strings, dates and number formats.
# Supported languages are the following: English - en , by default , Chinese - zh-CN .
# Kibana visual international configuration
#i18n.locale: "en"
Copy the code

Key Configuration Description

• Special port configuration, default is 5601:

  server.port: 5601
  Copy the code

• Host address configuration, default is localhost, remote cannot connect; You can also configure the local LAN IP. Configure 0.0.0.0 to indicate that all remote machines can connect:

  #server.host: "localhost"
  server.host: "0.0.0.0"
  Copy the code

• Kibana Configure the Elasticsearch instance. The IP address and port must be the same as the network. Host and http.port configured in the Elasticsearch instance.

  elasticsearch.hosts: ["http://localhost:9201"]
  Copy the code

• Configure the username and password for Elasticsearch access:

  elasticsearch.username: "elastic"
  elasticsearch.password: "123456"
  Copy the code

• Kibana international configuration, default en; Configure the Chinese version to zh-cn:

  i18n.locale: "en"
  Copy the code

Kibana start

• Window start:

  ./bin/kibana
  Copy the code

• Background start (usenohup) :

  nohup ./bin/kibana &
  Copy the code

Kibana on external visits

1. Configure server. Host, configure LAN IP or 0.0.0.0:

   server.host: "0.0.0.0"
   Copy the code

2. To disable the firewall (as user root), you can also use nginx proxy:

   # disable firewall
   systemctl stop firewalld
   Check the firewall status
   systemctl status firewalld
   Copy the code

3. Open a browser, type http://192.168.234.129:5601;

4. If you have set a password, enter the user name and password after accessing the address.