Elastic Stack Fundamentals to Advanced

Course Code: elkfunadv

Duration: 28 hours

Prerequisites:

System administration experience
Familiarity with the Linux command line

Audience

System administrators

Overview:

This instructor-led, live training is aimed at system administrators who wish to set up an ELK stack. Note that a minimum of 3 delegates is needed for this course to run.

The training starts with a discussion of ELK architecture and functionality, then moves on to live lab implementation and practice. Hands-on exercises make up an important part of the training and give participants a chance to put into practice their knowledge while receiving feedback on their progress.

Format of the Course

Interactive lecture and discussion.
Lots of exercises and practice.
Hands-on implementation in a live-lab environment.

Course Outline:

Elastic Stack

•Elastic Stack Overview

•Product Landscape

•Enterprise Search

Elastic Concepts

•Elastic Terminologies

•Node & Node Roles

•Scalability & Resilience

•When, where, Pros & Cons

•Search Engine Mechanism

Elastic Installation

•Pre-requisites & Installation

•Configuration Files & Important Settings

Elastic Cluster Concepts

•Discovery & Cluster Formation

•Master Election, Split Brain Concept & cluster bootstrapping

•Cluster State & Shard Allocation

•High Availability & Backup

•Cross Cluster Replication

•Index Template & Mapping

•Security and encryption configuration

Operational Configurations & Best Practices

•Heap Size

•Shard Size

•Shard Count

•Hot-Warm-Cold Architecture

•Linux server specific settings

•Rollover Index

•Cluster Settings

Text Analytics

•Query DSL

•Normalizer, Tokenizer

Kibana

•What & Why

•Kibana Terminologies & Components

•Best Practices

Kibana Installation

•Pre-requisites & Installation

•Configuration Files & Important Settings

Logstash

•What & Why

•Logstash Queues

•High Availability & Design for Failure

•Logstash Troubleshooting

•Common Filter Plugins & its use cases

•Best Practices

Logstash Installation

•Pre-requisites & Installation

•Configuration Files & Important Settings

Filebeat

•Concepts

•Configuration files & Settings

•Filebeat Installation & Directory Layout

•Processors

Bonus:

Production best practices & way to troubleshoot to reduce MTTR