Introduction

Kibana 101
What is ELK?

2
ELK – Elasticsearch Logstash Kibana
ELK is a combination of 3 open-source tools; Elasticsearch
Logstash & Kibana for log Analysis.

An Apache Lucene based search Engine

Its Open-Source and developed using
Java

Tool for collecting and monitoring logs

from remote machines
Is a data pipeline for Elasticsearch

Data exploration and visualization tool

Used for log and timeseries analytics,
application monitoring, and operational
intelligence
3
 Role Of Kibana
Enable searching and interaction with data in
Elasticsearch

Allows performing advanced analytics and creation of

reports

Enable creation and sharing of dynamic dashboards that

get updated in real time

Note: Kibana is accessed over the web at port localhost:5601 4

Companies Using
Kibana
5
 Overview
Kibana – Environment Setup
Kibana – Aggregations and Metrics
Kibana – Create Visualization
Kibana – Working With Charts
Kibana – Working With Graphs
Kibana – Working With Heatmap
Kibana – Working With Coordinate Maps
Kibana – Create Dashboard
Kibana – Monitoring

6
Kibana – Environment Setup
Go to the official Kibana site - https://www.elastic.co/products/kibana

Click the downloads link on the top right

corner and it will display screen as follows:

Click the Download button for Kibana. Please

note to work with Kibana we need 64 bit
machine and it will not work with 32 bit.

7
Once Kibana starts, the user can see the Once you see the ready signal in the console, you can open
Kibana in browser using http://localhost:5601/.The default port
following screen: on which kibana is available is 5601.

8
Kibana – Aggregations

What is Kibana Aggregation? Bucket Aggregation

• Aggregation refers to the collection of documents or a • A bucket mainly consists of a key and a document.
set of documents obtained from a particular search
query or filter.
• Aggregation forms the main concept to build the desired
visualization in Kibana. Whenever you perform any
visualization, you need to decide the criteria, which
means in which way you want to group the data to
perform the metric on it

9
Kibana – Aggregations
Date Histogram
• Date Histogram aggregation is used on a date field. So
the index that you use to visualize, if you have date field
in that index than only this aggregation type can be
used. This is a multi-bucket aggregation which means
you can have some of the documents as a part of more
than 1 bucket. There is an interval to be used for this
aggregation and the details are as shown below:
• When you Select Buckets Aggregation as Date
Histogram, it will display the Field option which will give
only the date related fields. Once you select your field,
you need to select the Interval which has the following
details:
10
Kibana – Aggregations

Date Range Terms

• You need a date field to use this aggregation type. Here • This type of aggregation is used on all the available fields
we will have a date range, that is from date and to date namely number, string, date, boolean, IP address,
are to be given. The buckets will have its documents timestamp etc.
based on the form and to date given.

11
Kibana – Aggregations

Filters Significant Terms

• With Filters type aggregation, the buckets will be formed • This type of aggregation is mostly used on the string
based on the filter. Here you will get a multi-bucket fields.
formed as based on the filter criteria one document can
exists in one or more buckets.

12
Kibana – Aggregations

Histogram IPv4 Range

• This type of aggregation is applied on a number field • This type of aggregation is used and mainly used for IP
and it will group the documents in a bucket based on addresses.
the interval applied. For example, 0-50,50-100,100-150
etc.

13
Kibana – Metric Aggregation

Metric Aggregation
• Metric Aggregation mainly refers to the math calculation
done on the documents present in the bucket. For
example if you choose a number field the metric
calculation you can do on it is COUNT, SUM, MIN, MAX,
AVERAGE etc.

14
Kibana – Create Visualization

Create Visualization

15
Kibana – Create Visualization
Create Visualization

16
Kibana – Create Visualization
Create Visualization

17
Kibana – Create Visualization
Create Visualization

18
Kibana – Working with Charts
Working with Charts
• the most commonly used charts in visualization.
• Horizontal Bar Chart
Gross Revenue
• Vertical Bar Chart
$300,000 Company Sales
• Pie Char
$6,750 $33,750
$250,000

$200,000

$150,000

$100,000

$50,000 $135,00
$270,00 0
0
$0
19
20YY 20YY 20YY 20YY 20YY
Kibana – Working with Charts
Horizontal Bar Chart

20
Kibana – Working with Charts
Horizontal Bar Chart

21
Kibana – Working with Charts
Pie Charts

22
Kibana – Working with Charts
Pie Charts

23
Kibana – Working With Graphs
Line Graph

24
Kibana – Working With Graphs
Area Graph

25
Kibana — Working with Heat Map
Area Graph

26
Kibana — Working with Heat Map
Area Graph

27
Kibana — Working with Coordinate Maps
Coordinate Graph

28
Kibana — Working with Coordinate Maps
Coordinate Graph

29
Kibana — Working with Coordinate Maps
Coordinate Graph

30
Kibana – Create Dashboard
Getting Started with Dashboard

31
Kibana – Create Dashboard
Getting Started with Dashboard

32
Kibana – Create Dashboard
Getting Started with Dashboard

33
Kibana – Monitoring
Monitoring Details

34
ThankYou
Danu Prasojo
08816106082
danu@paket.id
www.paket.id