diff --git a/CHANGELOG.next.asciidoc b/CHANGELOG.next.asciidoc index 954d76e24e5..c2440d5462a 100644 --- a/CHANGELOG.next.asciidoc +++ b/CHANGELOG.next.asciidoc @@ -88,6 +88,8 @@ https://github.com/elastic/beats/compare/v7.0.0-alpha2...master[Check the HEAD d *Filebeat* - Set event.outcome field based on googlecloud audit log output. {pull}15731[15731] +- Add dashboard for AWS ELB fileset. {pull}15804[15804] + *Heartbeat* diff --git a/filebeat/docs/images/filebeat-aws-elb-overview.png b/filebeat/docs/images/filebeat-aws-elb-overview.png new file mode 100644 index 00000000000..6b0cc1b74bc Binary files /dev/null and b/filebeat/docs/images/filebeat-aws-elb-overview.png differ diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.json new file mode 100644 index 00000000000..5d80aa7a7a6 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.json @@ -0,0 +1,949 @@ +{ + "objects": [ + { + "attributes": { + "description": "Filebeat AWS ELB Access Log Overview Dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "isLayerTOCOpen": false, + "mapCenter": { + "lat": 51.63808, + "lon": 17.07232, + "zoom": 3.47 + }, + "openTOCDetails": [], + "title": "ELB Requests Geolocation" + }, + "gridData": { + "h": 14, + "i": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", + "panelRefName": "panel_0", + "title": "ELB Requests Geolocation", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB Inbound Traffic" + }, + "gridData": { + "h": 14, + "i": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", + "panelRefName": "panel_1", + "title": "ELB Inbound Traffic", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB Top User Agents" + }, + "gridData": { + "h": 14, + "i": "48ecb39f-57a5-4805-a8a9-77385a996d75", + "w": 16, + "x": 32, + "y": 14 + }, + "panelIndex": "48ecb39f-57a5-4805-a8a9-77385a996d75", + "panelRefName": "panel_2", + "title": "ELB Top User Agents", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB Total Requests" + }, + "gridData": { + "h": 14, + "i": "9812996e-ba10-41bd-b134-c9705a0973b4", + "w": 16, + "x": 0, + "y": 14 + }, + "panelIndex": "9812996e-ba10-41bd-b134-c9705a0973b4", + "panelRefName": "panel_3", + "title": "ELB Total Requests", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB Top IP Addresses" + }, + "gridData": { + "h": 14, + "i": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", + "w": 16, + "x": 16, + "y": 14 + }, + "panelIndex": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", + "panelRefName": "panel_4", + "title": "ELB Top IP Addresses", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB Outbound Traffic" + }, + "gridData": { + "h": 14, + "i": "bf43580d-cc26-415b-ae36-d678a232b544", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "bf43580d-cc26-415b-ae36-d678a232b544", + "panelRefName": "panel_5", + "title": "ELB Outbound Traffic", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB HTTP 2xx" + }, + "gridData": { + "h": 14, + "i": "466e825b-6ee2-43c3-b221-21abe27612dd", + "w": 16, + "x": 0, + "y": 28 + }, + "panelIndex": "466e825b-6ee2-43c3-b221-21abe27612dd", + "panelRefName": "panel_6", + "title": "ELB HTTP 2xx", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB HTTP 4xx" + }, + "gridData": { + "h": 14, + "i": "d42994a6-922c-4f86-bf99-a46f87ff106d", + "w": 16, + "x": 16, + "y": 28 + }, + "panelIndex": "d42994a6-922c-4f86-bf99-a46f87ff106d", + "panelRefName": "panel_7", + "title": "ELB HTTP 4xx", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "title": "ELB HTTP 5xx" + }, + "gridData": { + "h": 14, + "i": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", + "w": 16, + "x": 32, + "y": 28 + }, + "panelIndex": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", + "panelRefName": "panel_8", + "title": "ELB HTTP 5xx", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat AWS] ELB Access Log Overview", + "version": 1 + }, + "id": "3af47420-3e7b-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "dashboard": "7.3.0" + }, + "references": [ + { + "id": "0edf0640-3e7e-11ea-bb0a-69c3ca1d410f", + "name": "panel_0", + "type": "map" + }, + { + "id": "76af8140-3e84-11ea-bb0a-69c3ca1d410f", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "73970bc0-3e86-11ea-bb0a-69c3ca1d410f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "ceb7c030-3e86-11ea-bb0a-69c3ca1d410f", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "bd37d720-3e84-11ea-bb0a-69c3ca1d410f", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "219c1850-3e82-11ea-bb0a-69c3ca1d410f", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "b6a308f0-3e82-11ea-bb0a-69c3ca1d410f", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "d8b1e830-3e82-11ea-bb0a-69c3ca1d410f", + "name": "panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2020-01-27T07:52:13.100Z", + "version": "WzUxNSwxXQ==" + }, + { + "attributes": { + "bounds": { + "coordinates": [ + [ + [ + -14.38966, + 60.11526 + ], + [ + -14.38966, + 39.61205 + ], + [ + 41.72167, + 39.61205 + ], + [ + 41.72167, + 60.11526 + ], + [ + -14.38966, + 60.11526 + ] + ] + ], + "type": "Polygon" + }, + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"19047c4c-18d7-4aec-b0ce-98de2828244d\",\"label\":\"Hits\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"applyGlobalQuery\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"1e82f50f-424a-4718-905b-ad45db14db62\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"COARSE\",\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"color\":\"Blues\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"minSize\":4,\"maxSize\":32}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbol\":{\"options\":{\"symbolizeAs\":\"circle\",\"symbolId\":\"airfield\"}}}},\"id\":\"1d457cd4-01be-4f96-95fd-af4ac535ebea\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"applyGlobalQuery\":true,\"type\":\"VECTOR\"}]", + "mapStateJSON": "{\"zoom\":3.9,\"center\":{\"lon\":13.666,\"lat\":50.97903},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"meta\":{\"index\":\"filebeat-*\",\"alias\":null,\"negate\":false,\"disabled\":false,\"type\":\"phrase\",\"key\":\"fileset.name\",\"value\":\"elb\",\"params\":{\"query\":\"elb\"}},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"elb\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}]}", + "title": "ELB Requests Geolocation [Filebeat AWS] ECS", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "id": "0edf0640-3e7e-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "map": "7.4.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzEzOCwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB Inbound Traffic [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\"" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Inbound", + "line_width": 1, + "metrics": [ + { + "field": "source.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries" + }, + "title": "ELB Inbound Traffic [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "76af8140-3e84-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzEzOSwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB Top User Agents [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "bar_color_rules": [ + { + "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" + } + ], + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "gauge_color_rules": [ + { + "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "pivot_id": "user_agent.original", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "color_rules": [ + { + "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "User Agent", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "2010cb20-3e87-11ea-9067-cf383a4ea3b3", + "type": "cumulative_sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "user_agent.original", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n" + }, + "title": "ELB Top User Agents [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "73970bc0-3e86-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0MCwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB Total Requests [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Requests", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries" + }, + "title": "ELB Total Requests [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0MSwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB Top IP Addresses [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "bar_color_rules": [ + { + "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" + } + ], + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "gauge_color_rules": [ + { + "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "pivot_id": "user_agent.original", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "color_rules": [ + { + "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "IP address", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "40c52370-3e87-11ea-9067-cf383a4ea3b3", + "type": "cumulative_sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "source.ip", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n" + }, + "title": "ELB Top IP Addresses [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "ceb7c030-3e86-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0MiwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB Outbound Traffic [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(253,161,255,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\"" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Outbound", + "line_width": 1, + "metrics": [ + { + "field": "destination.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries" + }, + "title": "ELB Outbound Traffic [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "bd37d720-3e84-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0MywxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB HTTP 2xx [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" and http.response.status_code \u003e= 200 and http.response.status_code\t\u003c 300" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "HTTP 2xx", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries" + }, + "title": "ELB HTTP 2xx [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "219c1850-3e82-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0NCwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB HTTP 4xx [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" and http.response.status_code \u003e= 400 and http.response.status_code \u003c 500" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "HTTP 4xx", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries" + }, + "title": "ELB HTTP 4xx [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "b6a308f0-3e82-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0NSwxXQ==" + }, + { + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ELB HTTP 5xx [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "default_index_pattern": "filebeat-*", + "default_timefield": "@timestamp", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" and http.response.status_code \u003e= 500 and http.response.status_code \u003c 600" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "HTTP 5xx", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries" + }, + "title": "ELB HTTP 5xx [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "id": "d8b1e830-3e82-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.3.1" + }, + "references": [], + "type": "visualization", + "updated_at": "2020-01-27T07:49:00.984Z", + "version": "WzE0NiwxXQ==" + } + ], + "version": "7.4.0" +}