How to setup ELK Stack

Hello Everyone, In This Post, We Will Do ELK Stack Installation and Configuration, Then Network Analysis. To Read What is ELK Stack

I’m So Excited Let’s Get Started !

Elasticsearch Setup

Retrieving Elasticsearch Signing Key

We install the apt-transport-https package

Adding to Elasticsearch Repo

Updating and Installing the Repo

You Need to Configure Localhost I’ll Go To elasticsearch.yml File And Give My Port Number I’ll Work

Then We Start Our ELK Stack Service

To Find Out It’s Working

Logstash Install

Logstash requires Java 8 or Java 11 to run and We install logstash which was added to the repo before

Kibana Install

More students are already attached to the Repo. To configure, we go to the /etc/kibana/kibana.yml folder and make the following settings

Beats Install

Here we are installing metricbeat for Beats, you can install file bat packetbeat winlogbeat for other package

That’s it for the installation, then we will analyze the log submission, don’t forget to stay tuned, have a good time