Logging & ELK Stack
Elasticsearch, Logstash, Kibana, Beats, log aggregation, search, dashboards, troubleshooting log ingestion
1What is Elasticsearch in the ELK Stack?
What is Elasticsearch in the ELK Stack?
Відповідь
Elasticsearch is a distributed search and analytics engine based on Apache Lucene. It stores logs as indexed JSON documents, enabling fast and complex real-time searches. Elasticsearch uses inverted indexes to optimize full-text queries, making it ideal for analyzing millions of log lines. It is at the core of the ELK Stack and serves as the primary database for all collected data.
2What is the primary role of Logstash in the ELK Stack?
What is the primary role of Logstash in the ELK Stack?
Відповідь
Logstash is a data processing pipeline that ingests, transforms, and enriches logs before indexing them in Elasticsearch. It uses an input-filter-output architecture to parse raw logs, extract structured fields with Grok patterns, and add metadata. Logstash enables normalization of heterogeneous log formats from multiple sources, facilitating their subsequent analysis in Kibana.
3What is the primary function of Kibana?
What is the primary function of Kibana?
Відповідь
Kibana is the visualization and data exploration interface for data stored in Elasticsearch. It enables the creation of interactive dashboards, custom charts, and ad-hoc searches on logs. Kibana also offers advanced features like Machine Learning for anomaly detection, and Timelion for time-series analysis, making log analysis accessible without complex queries.
What are Beats in the ELK ecosystem?
What is the main difference between Filebeat and Logstash?
+17 питань зі співбесід
Інші теми співбесід DevOps
Version Control & Git
Linux Fundamentals
Shell Scripting & Bash
Networking Basics
Docker Fundamentals
CI/CD Fundamentals
GitHub Actions
GitLab CI/CD
Jenkins
Kubernetes Basics
Kubernetes Networking
Kubernetes Advanced
Ingress & API Gateway
Terraform Basics
Terraform Advanced
Ansible & Configuration Management
AWS Essentials
Azure Fundamentals
GCP Fundamentals
Monitoring & Prometheus
Alerting & Incident Response
Cloud Identity & Secrets
CI/CD Pipeline Security
Helm & Kubernetes
Runtime & Cluster Security
Container Supply Chain Security
Service Mesh & Istio
GitOps & ArgoCD
Progressive Delivery
Distributed Observability
Disaster Recovery & Backup
Performance Optimization
Cloud Cost Optimization
SRE Principles
Chaos Engineering
Platform Engineering
Опануй DevOps для наступної співбесіди
Отримай доступ до всіх питань, flashcards, технічних тестів, вправ code review та симуляторів співбесід.
Почни безкоштовно