- 已编辑
kubesphere: 3.1.0
kubernetes: 1.20.6
elasticsearch: 7.5.1
ClusterConfiguration CRD 为(只输出了有用的部分):
spec:
alerting:
enabled: true
auditing:
enabled: true
authentication:
jwtSecret: NbxwnhExCLSfQnRlvcuudDgwj3G14cKb
common:
es:
basicAuth:
enabled: true
password: '=sm%123}Drhg}Oa'
username: kslog
elasticsearchDataVolumeSize: 20Gi
elasticsearchMasterVolumeSize: 4Gi
elkPrefix: dev
externalElasticsearchPort: '80'
externalElasticsearchUrl: es.platform.baidu.cn
logMaxAge: 7
minioVolumeSize: 20Gi
monitoring:
endpoint: 'http://prometheus-operated.kubesphere-monitoring-system.svc:9090'
openldap:
enabled: false
openldapVolumeSize: 2Gi
redis:
enabled: false
redisVolumSize: 2Gi
解析 fluent-bit-config
kubectl get secrets -n kubesphere-logging-system fluent-bit-config -oyaml
[Output]
Name es
Match kube_events
Host es.platform.baidu.cn
Port 80
HTTP_User kslog
HTTP_Passwd =sm%123}Drhg}Oa
Logstash_Format true
Logstash_Prefix ks-dev-events
[Output]
Name es
Match kube_auditing
Host es.platform.baidu.cn
Port 80
HTTP_User kslog
HTTP_Passwd =sm%123}Drhg}Oa
Logstash_Format true
Logstash_Prefix ks-dev-auditing
[Output]
Name es
Match_Regex (?:kube|service)\.(.*)
Host es.platform.baidu.cn
Port 80
HTTP_User kslog
HTTP_Passwd =sm%123}Drhg}Oa
Logstash_Format true
Logstash_Prefix ks-dev-log
Time_Key @timestamp
apiVersion: logging.kubesphere.io/v1alpha2
kind: Output
metadata:
name: es
namespace: kubesphere-logging-system
resourceVersion: '199132225'
uid: 1af6ef9e-4fdc-47a7-97a7-6cc1172a8bac
spec:
es:
host: es.platform.baidu.cn
httpPassword:
valueFrom:
secretKeyRef:
key: password
name: elasticsearch-credentials
httpUser:
valueFrom:
secretKeyRef:
key: username
name: elasticsearch-credentials
logstashFormat: true
logstashPrefix: ks-dev-log
port: 80
timeKey: '@timestamp'
matchRegex: '(?:kube|service)\.(.*)'