#  curl -O https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-7.9.0-linux-x86_64.tar.gz

#  wget   https://abc.htmltoo.com/:7777/src/common/monitor/elasticsearch-7.9.0-linux-x86_64.tar.gz

cd  /data/site/go/htmltoo.ssh/tools/soft/src/common/monitor/

tar -xzf elasticsearch-7.9.0-linux-x86_64.tar.gz

mv  elasticsearch-7.9.0-linux-x86_64 /opt/elasticsearch

./bin/elasticsearch -d -p pid

https://www.elastic.co/guide/en/kibana/7.9/targz.html

#  curl -O https://artifacts.elastic.co/downloads/kibana/kibana-7.9.0-linux-x86_64.tar.gz

#  wget   https://abc.htmltoo.com/:7777/src/common/monitor/kibana-7.9.0-linux-x86_64.tar.gz

cd  /data/site/go/htmltoo.ssh/tools/soft/src/common/monitor/

tar -xzf kibana-7.9.0-linux-x86_64.tar.gz  

mv  kibana-7.9.0-linux-x86_64 /opt/kibana

/opt/kibana/bin/kibana   --allow-root   # 用root,必须加 --allow-root 

==================

systemctl daemon-reload

systemctl enable kibana.service

systemctl start kibana.service

systemctl stop kibana.service

/etc/kibana/kibana.yml

https://www.elastic.co/guide/en/beats/filebeat/7.9/filebeat-modules.html

./filebeat modules list

./filebeat modules enable system nginx mysql

- module: nginx

  access:

    var.paths: ["/var/log/nginx/access.log*"]

./filebeat setup -e

chown root filebeat.yml 

chown root modules.d/system.yml 

./filebeat -e