1、作業系統版本資訊
2、需要關閉iptables服務,禁止IPtables啟動
systemctl stop firewalld.service
systemctl disable firewalld.service
3、關閉SELinux,檢視關閉狀态,修改完之後進行重新開機
getenforce
vim /etc/selinux/config
重新開機完之後檢視SELinux已經關閉
4、使用yum安裝 JDK1.8
yum install java-1.8.0-openjdk* -y
5、導入ELK安裝證書
rpm --import https://packages.elastic.co/GPG-KEY-elasticsearch
6、編輯yum源
vim /etc/yum.repos.d/elastic.repo
[elastic-6.x]
name=Elastic repository for 6.x packages
baseurl=https://artifacts.elastic.co/packages/6.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=1
autorefresh=1
type=rpm-md
7、安裝ELK
yum -y install elasticsearch logstash kibana