Shantanu's Blog

Corporate Consultant

August 26, 2016

 

Logsene by sematext

Logsene by sematext is very similar to logstash which is part of ELK stack. It makes hosting and managing data much easier by adding some features like IP addresses white-listing and user management.

logstash

To start pushing logs, you must create a file named /etc/logstash/conf.d/logsene.conf with the below text and restart Logstash.

input {
    file {
        path => "/var/log/messages"
        start_position => "beginning"
    }
}

output {
    elasticsearch {
        hosts => "logsene-receiver.sematext.com:443" # use port 80 for plain HTTP, instead of HTTPS
        ssl => "true"                                # set to false if you don't want to use SSL/HTTPS
        index => "38e31db7-3762-4b9c-937a-3e2e080974"
        manage_template => false
        idle_flush_time => 10
        flush_size => 1000
    }
}


filebeat

The following example tails the /var/log/test.log file and forwards every line to a Logstash beats input. To start pushing logs, you need to replace the config file named filebeat.yml with the one below and restart Filebeat.

filebeat:
  prospectors:
    -
      paths:
        - /var/log/logstash/test.log
        # - c:\logs\test.log
output:
  logstash:
    hosts: ["LOGSTASH_HOST:11111"]
For this to work, Logstash also needs to be configured to accept logs from Filebeat:

input {
  beats {
    port => 11111
  }
}

output {
    elasticsearch {
        hosts => "logsene-receiver.sematext.com:443" # use port 80 for plain HTTP, instead of HTTPS
        ssl => "true"                                # set to false if you don't want to use SSL/HTTPS
        index => "38e31db7-3762-4b9c-937a-3e2e080974"
        manage_template => false
    }
}


collect docker logs

docker run --name sematext-agent --restart=always \
  -e LOGSENE_TOKEN=38e31db7-3762-4b9c-937a-3e2e080974 \
  -v /var/run/docker.sock:/var/run/docker.sock \
  -v /etc/localtime:/etc/localtime:ro \
  -d sematext/sematext-agent-docker


AWS lamabda

https://github.com/sematext/logsene-aws-lambda-s3


Python

import logging
import logging.handlers


handler = logging.handlers.SysLogHandler(address=('logsene-receiver-syslog.sematext.com', 514))
formater = logging.Formatter("38e31db7-3762-4b9c-937a-3e2e080974:%(message)s")
handler.setFormatter(formater)
logger = logging.getLogger('HelloLogsene')
logger.setLevel(logging.DEBUG)
logger.addHandler(handler)


logger.debug("Hello, Logsene!")
logger.info("Hello, Logsene!")
logger.warning("Hello, Logsene!")
logger.error("Hello, Logsene!")



Elasticsearch API

host: logsene-receiver.sematext.com
port: 80 (HTTP) or 443 (HTTPS)
index: 38e31db7-3762-4b9c-937a-3e2e080974d0 (this is your Logsene app token - keep it secure)
curl -XPOST http://logsene-receiver.sematext.com/38e31db7-3762-4b9c-937a-3e2e080974/example/ -d '{
    "message": "Hello, Logsene!"
}'

Labels: , , ,


August 17, 2016

 

generate numpy array using list of lists

Here is the list of medals won by each country as on 7 th day of the game.

usa = ['USA', 30, 29, 28]
uk = ['UK', '20', '19', '14']
china = ['china', 19, 17, 20]

# list of lists of each country
gold_silver_bronze = [usa, uk, china]

# create numpy array
import numpy as np
olympic = np.array(gold_silver_bronze)

same as

# olympic = np.array([['USA', 30, 29, 28], ['UK', '20', '19', '14'], ['china', 19, 17, 20]])


# countries participated
olympic[:,0]

# total of gold
sum(np.array(olympic[:,1], np.int))


# welcome pandas
import pandas as pd

>>> df=pd.DataFrame(olympic)
>>> df
       0   1   2   3
0    USA  30  29  28
1     UK  20  19  14
2  china  19  17  20

>>> df.dtypes
country    object
gold       object
silver     object
bronze     object
dtype: object

>>> df.gold=pd.to_numeric(df.gold)

>>> df.dtypes
country    object
gold        int64
silver     object
bronze     object
dtype: object

# which one is easier?

>>> df.gold.sum()
69
>>> sum(np.array(olympic[:,1], np.int))
69


# but how will you find the total of gold medals won by all countries?

>>> x = 0
>>> for i in gold_silver_bronze:
...     y = i[1]
...     x += int(y)
...
>>> x
69
_____


# total of medals won by USA
>>> usa[1:]
[30, 29, 28]
>>> sum(usa[1:])
87

>>> df['total']=df['gold']+df['silver']+df['bronze']
>>> df[['country', 'total']]
  country  total
0     USA     87
1      UK     53
2   china     56

Labels: ,


 

easily create json objects


Here is a simple tool to generate JSON very easily. It allows you to quickly build JSON without getting into the complexity of nesting and object types.

http://objgen.com/json?demo=true

Labels: ,


August 06, 2016

 

Nested fields in elasticsearch

nested fields are searchable and correctly queried. If you do not specify a field as "nested" then it is considered as default "object" and is not efficient.

## delete index
curl -XDELETE http://52.86.94.139:9200/deliveryreports_june2016d/

## create index
curl -XPUT http://52.86.94.139:9200/deliveryreports_june2016d/

## declare mapping for the index
curl -XPUT "http://52.86.94.139:9200/deliveryreports_june2016d/_mapping/mydoc" -d'
{
   "properties": {
      "parent": {
         "type": "nested",
         "properties": {
            "mytimestamp": {
               "type": "string",
               "fields": {
                  "raw": {
                     "type": "date",
                     "format": "yyyy-MM-dd HH:mm:ss||yyyy-MM-dd||strict_date_optional_time||epoch_millis"
                  }
               }
            }
         }
      }
   }
}'

## check mapping
curl -XGET http://52.86.94.139:9200/deliveryreports_june2016d/_mapping/mydoc | python -m json.tool

## add a record
curl -XPUT "http://52.86.94.139:9200/deliveryreports_june2016d/mydoc/2" -d'
{
   "name": "shantanu",
   "parent": {
      "mytimestamp": "2016-05-18 08:41:49"
   }
}'

## check if record is added
curl -XGET http://52.86.94.139:9200/deliveryreports_june2016d/mydoc/2 | python -m json.tool

## simple query will work on non-nested fields
curl -XPOST "http://52.86.94.139:9200/deliveryreports_june2016d/_search" -d'
{
    "query": {
            "term": {
            "name": "shantanu"
    }}
}'

## This won't work on nested column
curl -XPOST "http://52.86.94.139:9200/deliveryreports_june2016d/mydoc/_search " -d'
{
   "query": {
      "match": {
         "parent.mytimestamp": "2016-05-18 08:41:49"
      }
   }
}'

## This will work because query needs to be declared as "nested" if parent object is nested in mapping
curl -XPOST "http://52.86.94.139:9200/deliveryreports_june2016d/mydoc/_search " -d'
{
    "query": {
        "nested": {
           "path": "parent",
           "query": {
               "match": {
                  "parent.mytimestamp": "2016-05-18 08:41:49"
               }
           }
        }
    }
}' | python -m json.tool


curl -XPOST "http://52.86.94.139:9200/deliveryreports_june2016d/mydoc/_search" -d'
{
   "query": {
      "nested": {
         "path": "parent",
         "query": {
            "filtered": {
               "query": {
                  "match_all": {}
               },
               "filter": {
                  "range": {
                     "parent.mytimestamp.raw": {
                        "gte": "2013-01-01 00:00:00"
                     }
                  }
               }
            }
         }
      }
   }
}' | python -m json.tool

Labels:


July 21, 2016

 

Install and use private docker registry

# On the master server, create a registry container...
docker run -d -p 5000:5000 registry

This command will start a fresh new registry. If you have a registry with all your images built-in then use that like this...

docker run -p 5000:5000 -d shantanuo/myregistry
_____

# On the client server, change the docker config file as shown below and restart docker...
(centOS)
vi /etc/sysconfig/docker
or
vi /etc/init.d/docker

OPTIONS="--insecure-registry 52.205.213.245:5000"

(Ubuntu)
vi /etc/default/docker

DOCKER_OPTS="--insecure-registry 52.205.213.245:5000"

# Now download an image from docker hub and upload it to private repository...
docker pull django
docker pull rabbitmq:3-management
docker pull mongo:3.3.9
docker pull phusion/passenger-full
docker pull continuumio/miniconda

docker tag django 52.205.213.245:5000/shantanuo/mydjango
docker tag rabbitmq:3-management 52.205.213.245:5000/shantanuo/myrabbit
docker tag mongo:3.3.9 52.205.213.245:5000/shantanuo/mymongo
docker tag phusion/passenger-full 52.205.213.245:5000/shantanuo/mypassenger
docker tag continuumio/miniconda 52.205.213.245:5000/shantanuo/myminiconda

docker push 52.205.213.245:5000/shantanuo/mydjango
docker push 52.205.213.245:5000/shantanuo/myrabbit
docker push 52.205.213.245:5000/shantanuo/mymongo
docker push 52.205.213.245:5000/shantanuo/mypassenger
docker push 52.205.213.245:5000/shantanuo/myminiconda

# check if all the images are uploaded correctly
docker search 52.205.213.245:5000/
OR
docker search localhost:5000/
_____

# backup your private registry so that you can restore it in case of master server crash

docker commit 126781fc1667 shantanuo/myregistry

docker push shantanuo/myregistry
_____

Download and run the private registry image from docker hub

docker run -p 5000:5000 -d shantanuo/myregistry

docker search localhost:5000/
NAME                    DESCRIPTION   STARS     OFFICIAL   AUTOMATED
openshift/busybox                     0
shantanuo/pyrun                       0
shantanuo/mydjango                    0
shantanuo/myrabbit                    0
shantanuo/mymongo                     0
shantanuo/mypassenger                 0
shantanuo/myminiconda                 0
_____

Here is how to download and start a container from private registry...

From docker hub:

docker run --hostname oksoft -p 15672:15672  -d rabbitmq:3-management

From private registry:

docker run --hostname oksoft -p 15672:15672  -d ec2-54-164-0-64.compute-1.amazonaws.com:5000/shantanuo/myrabbit

Labels:


Archives

June 2001   July 2001   January 2003   May 2003   September 2003   October 2003   December 2003   January 2004   February 2004   March 2004   April 2004   May 2004   June 2004   July 2004   August 2004   September 2004   October 2004   November 2004   December 2004   January 2005   February 2005   March 2005   April 2005   May 2005   June 2005   July 2005   August 2005   September 2005   October 2005   November 2005   December 2005   January 2006   February 2006   March 2006   April 2006   May 2006   June 2006   July 2006   August 2006   September 2006   October 2006   November 2006   December 2006   January 2007   February 2007   March 2007   April 2007   June 2007   July 2007   August 2007   September 2007   October 2007   November 2007   December 2007   January 2008   February 2008   March 2008   April 2008   July 2008   August 2008   September 2008   October 2008   November 2008   December 2008   January 2009   February 2009   March 2009   April 2009   May 2009   June 2009   July 2009   August 2009   September 2009   October 2009   November 2009   December 2009   January 2010   February 2010   March 2010   April 2010   May 2010   June 2010   July 2010   August 2010   September 2010   October 2010   November 2010   December 2010   January 2011   February 2011   March 2011   April 2011   May 2011   June 2011   July 2011   August 2011   September 2011   October 2011   November 2011   December 2011   January 2012   February 2012   March 2012   April 2012   May 2012   June 2012   July 2012   August 2012   October 2012   November 2012   December 2012   January 2013   February 2013   March 2013   April 2013   May 2013   June 2013   July 2013   September 2013   October 2013   January 2014   March 2014   April 2014   May 2014   July 2014   August 2014   September 2014   October 2014   November 2014   December 2014   January 2015   February 2015   March 2015   April 2015   May 2015   June 2015   July 2015   August 2015   September 2015   January 2016   February 2016   March 2016   April 2016   May 2016   June 2016   July 2016   August 2016  

This page is powered by Blogger. Isn't yours?