A Journey of a Thousand Miles Begins with a Single Step

Create a self signed certificate with openssl

Running Kibana with SSL requires a certificate. One way is to use a self signed certificate.

Read more

Docker behind proxy with CNTLM

Docker on windows in a corporate environment is behind a proxy. Therefore I use CNTLM for a proxy authentication. This post demonstrate how to remove the default vm (virtualbox image) and create one with CNTLM as proxy. All commands were executed on the windows command prompt.

Read more

View stdout of docker container


Read more

Start bash in docker container

Replace id and there you go:

Read more

Check used files of process

I have to work recently with a Fraud Prevention and Detection solution and needed to check in the enormous configuration which resources are used.

Read more

Resolve multiline grokparsefailure with regex

On a daily logrotate I have noticed that one of my monitored applications is doing a multiline input, but due to a misconfiguration in logstash, the grokparsefailure appears. I just want to leave the message as it is. Therefore logstash provides event dependent configuration capabilities with regular expression comparisons.

Read more

testdisk saved my data from a sd-card

TestDisk is free data recovery software. I got serious problems with my 16 GB SDXC card. It was formatted with ext3 and the superblock was corrupt.

Read more

Replace NaN values with zero

In logstash some grokked fields in messages, that suppose to be numeric, flying in with “NaN” (Not a Number). You can convert them with the mutate filter plugin.

Read more

Debug filebeat

Starting with filebeat can be troublesome, if a misconfiguration exists or he is not sending the logs to logstash or elasticsearch. To analyse that start filebeat in debug mode filebeat -e -v -d '*'.

Read more